<?php

/**
 * UserIdentity represents the data needed to identity a user.
 * It contains the authentication method that checks if the provided
 * data can identity the user.
 */
class UserIdentity extends CUserIdentity
{
	/**
	 * Authenticates a user.
	 * The example implementation makes sure if the username and password
	 * are both 'demo'.
	 * In practical applications, this should be changed to authenticate
	 * against some persistent user identity storage (e.g. database).
	 * @return boolean whether authentication succeeds.
	 */
	public function authenticate()
	{
		$users=array(
			// username => password
//			'demo'=>'demo',
//			'admin'=>'admin',
		);
                
                $usrs = new Sysusrsecurity;
                $usrs = Sysusrsecurity::model()->find('CredentialName="'.$this->username.'" and isLocked = "0" and ExpiredDate > "'.Date('Y-m-d').'"', array('CredentialName ASD'));
                
                if (isset($usrs)){
                    $users[$usrs->CredentialName]=$usrs->Password;

                    $usrs = Sysusrsecurity::model()->findByPk($usrs->CredentialName);
                    $usrs->LastLoginOn = Date('Y-m-d H:i:s');
                    $usrs->LastLoginOnIP = $_SERVER['REMOTE_ADDR'];
                    $usrs->save();
                }
                
		if(!isset($users[$this->username]))
			$this->errorCode=self::ERROR_USERNAME_INVALID;
		elseif($users[$this->username]!==$this->password)
			$this->errorCode=self::ERROR_PASSWORD_INVALID;
		else
			$this->errorCode=self::ERROR_NONE;
		return !$this->errorCode;
	}
}